* [ptxdist] [PATCH v1 0/4] libmicrohttpd: version bump 0.9.75 -> 1.0.1
@ 2025-05-06 12:52 Alexander Dahl via ptxdist
2025-05-06 12:52 ` [ptxdist] [PATCH v1 1/4] libmicrohttpd: version bump 0.9.75 -> 0.9.76 Alexander Dahl via ptxdist
` (3 more replies)
0 siblings, 4 replies; 9+ messages in thread
From: Alexander Dahl via ptxdist @ 2025-05-06 12:52 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
Hello everyone,
wanted to mitigate CVE-2023-27371, which is done by patch #1.
Took the opportunity to bump to the latest available stable version.
Struggled somewhat with the configure option changes, and thus did the
bumps step by step. If that's too noisy, feel free to squash.
Greets
Alex
Alexander Dahl (4):
libmicrohttpd: version bump 0.9.75 -> 0.9.76
libmicrohttpd: Pin down threading library
libmicrohttpd: version bump 0.9.76 -> 0.9.77
libmicrohttpd: version bump 0.9.77 -> 1.0.1
rules/libmicrohttpd.make | 22 +++++++++++++---------
1 file changed, 13 insertions(+), 9 deletions(-)
base-commit: 07e73af2896186728df06a101cfafa1ab3f58e52
--
2.39.5
^ permalink raw reply [flat|nested] 9+ messages in thread
* [ptxdist] [PATCH v1 1/4] libmicrohttpd: version bump 0.9.75 -> 0.9.76
2025-05-06 12:52 [ptxdist] [PATCH v1 0/4] libmicrohttpd: version bump 0.9.75 -> 1.0.1 Alexander Dahl via ptxdist
@ 2025-05-06 12:52 ` Alexander Dahl via ptxdist
2025-05-14 6:07 ` [ptxdist] [APPLIED] " Michael Olbrich
2025-05-06 12:52 ` [ptxdist] [PATCH v1 2/4] libmicrohttpd: Pin down threading library Alexander Dahl via ptxdist
` (2 subsequent siblings)
3 siblings, 1 reply; 9+ messages in thread
From: Alexander Dahl via ptxdist @ 2025-05-06 12:52 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
Mitigates CVE-2023-27371.
Link: https://lists.gnu.org/archive/html/libmicrohttpd/2023-02/msg00000.html
Signed-off-by: Alexander Dahl <ada@thorsis.com>
---
rules/libmicrohttpd.make | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/rules/libmicrohttpd.make b/rules/libmicrohttpd.make
index 68952eb8d..7ae58000b 100644
--- a/rules/libmicrohttpd.make
+++ b/rules/libmicrohttpd.make
@@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_LIBMICROHTTPD) += libmicrohttpd
#
# Paths and names
#
-LIBMICROHTTPD_VERSION := 0.9.75
-LIBMICROHTTPD_MD5 := aff64581937b53f3a23b05216ad2cd02
+LIBMICROHTTPD_VERSION := 0.9.76
+LIBMICROHTTPD_MD5 := a9f03510c521964ad40698471351673a
LIBMICROHTTPD := libmicrohttpd-$(LIBMICROHTTPD_VERSION)
LIBMICROHTTPD_SUFFIX := tar.gz
LIBMICROHTTPD_URL := $(call ptx/mirror, GNU, libmicrohttpd/$(LIBMICROHTTPD).$(LIBMICROHTTPD_SUFFIX))
--
2.39.5
^ permalink raw reply [flat|nested] 9+ messages in thread
* [ptxdist] [PATCH v1 2/4] libmicrohttpd: Pin down threading library
2025-05-06 12:52 [ptxdist] [PATCH v1 0/4] libmicrohttpd: version bump 0.9.75 -> 1.0.1 Alexander Dahl via ptxdist
2025-05-06 12:52 ` [ptxdist] [PATCH v1 1/4] libmicrohttpd: version bump 0.9.75 -> 0.9.76 Alexander Dahl via ptxdist
@ 2025-05-06 12:52 ` Alexander Dahl via ptxdist
2025-05-14 6:07 ` [ptxdist] [APPLIED] " Michael Olbrich
2025-05-06 12:52 ` [ptxdist] [PATCH v1 3/4] libmicrohttpd: version bump 0.9.76 -> 0.9.77 Alexander Dahl via ptxdist
2025-05-06 12:52 ` [ptxdist] [PATCH v1 4/4] libmicrohttpd: version bump 0.9.77 -> 1.0.1 Alexander Dahl via ptxdist
3 siblings, 1 reply; 9+ messages in thread
From: Alexander Dahl via ptxdist @ 2025-05-06 12:52 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
'posix' is what's found in automatic mode.
Signed-off-by: Alexander Dahl <ada@thorsis.com>
---
rules/libmicrohttpd.make | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/rules/libmicrohttpd.make b/rules/libmicrohttpd.make
index 7ae58000b..441644751 100644
--- a/rules/libmicrohttpd.make
+++ b/rules/libmicrohttpd.make
@@ -68,7 +68,8 @@ LIBMICROHTTPD_CONF_OPT := \
--disable-coverage \
--enable-asserts \
--disable-sanitizers \
- --disable-experimental
+ --disable-experimental \
+ --with-threads=posix
# ----------------------------------------------------------------------------
# Target-Install
--
2.39.5
^ permalink raw reply [flat|nested] 9+ messages in thread
* [ptxdist] [PATCH v1 3/4] libmicrohttpd: version bump 0.9.76 -> 0.9.77
2025-05-06 12:52 [ptxdist] [PATCH v1 0/4] libmicrohttpd: version bump 0.9.75 -> 1.0.1 Alexander Dahl via ptxdist
2025-05-06 12:52 ` [ptxdist] [PATCH v1 1/4] libmicrohttpd: version bump 0.9.75 -> 0.9.76 Alexander Dahl via ptxdist
2025-05-06 12:52 ` [ptxdist] [PATCH v1 2/4] libmicrohttpd: Pin down threading library Alexander Dahl via ptxdist
@ 2025-05-06 12:52 ` Alexander Dahl via ptxdist
2025-05-14 6:07 ` [ptxdist] [APPLIED] " Michael Olbrich
2025-05-06 12:52 ` [ptxdist] [PATCH v1 4/4] libmicrohttpd: version bump 0.9.77 -> 1.0.1 Alexander Dahl via ptxdist
3 siblings, 1 reply; 9+ messages in thread
From: Alexander Dahl via ptxdist @ 2025-05-06 12:52 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
Mostly bugfix release.
The new, improved eventfd configure check failed for cross compiling.
Just assume the kernel has CONFIG_EVENTFD enabled (recommended and
enabled if cgroups are enabled).
Link: https://lists.gnu.org/archive/html/libmicrohttpd/2023-05/msg00008.html
Signed-off-by: Alexander Dahl <ada@thorsis.com>
---
rules/libmicrohttpd.make | 11 ++++++-----
1 file changed, 6 insertions(+), 5 deletions(-)
diff --git a/rules/libmicrohttpd.make b/rules/libmicrohttpd.make
index 441644751..e42ac2316 100644
--- a/rules/libmicrohttpd.make
+++ b/rules/libmicrohttpd.make
@@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_LIBMICROHTTPD) += libmicrohttpd
#
# Paths and names
#
-LIBMICROHTTPD_VERSION := 0.9.76
-LIBMICROHTTPD_MD5 := a9f03510c521964ad40698471351673a
+LIBMICROHTTPD_VERSION := 0.9.77
+LIBMICROHTTPD_MD5 := bc1b407093459ff5e7af2e3c0634d220
LIBMICROHTTPD := libmicrohttpd-$(LIBMICROHTTPD_VERSION)
LIBMICROHTTPD_SUFFIX := tar.gz
LIBMICROHTTPD_URL := $(call ptx/mirror, GNU, libmicrohttpd/$(LIBMICROHTTPD).$(LIBMICROHTTPD_SUFFIX))
@@ -39,10 +39,11 @@ endif
# Prepare
# ----------------------------------------------------------------------------
-#
-# autoconf
-#
LIBMICROHTTPD_CONF_TOOL := autoconf
+
+LIBMICROHTTPD_CONF_ENV := $(CROSS_ENV) \
+ mhd_cv_eventfd_usable=yes
+
LIBMICROHTTPD_CONF_OPT := \
$(CROSS_AUTOCONF_USR) \
--disable-nls \
--
2.39.5
^ permalink raw reply [flat|nested] 9+ messages in thread
* [ptxdist] [PATCH v1 4/4] libmicrohttpd: version bump 0.9.77 -> 1.0.1
2025-05-06 12:52 [ptxdist] [PATCH v1 0/4] libmicrohttpd: version bump 0.9.75 -> 1.0.1 Alexander Dahl via ptxdist
` (2 preceding siblings ...)
2025-05-06 12:52 ` [ptxdist] [PATCH v1 3/4] libmicrohttpd: version bump 0.9.76 -> 0.9.77 Alexander Dahl via ptxdist
@ 2025-05-06 12:52 ` Alexander Dahl via ptxdist
2025-05-14 6:07 ` [ptxdist] [APPLIED] " Michael Olbrich
3 siblings, 1 reply; 9+ messages in thread
From: Alexander Dahl via ptxdist @ 2025-05-06 12:52 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
Official stable release.
Link: https://lists.gnu.org/archive/html/info-gnu/2024-02/msg00000.html
Link: https://lists.gnu.org/archive/html/info-gnu/2024-02/msg00003.html
Signed-off-by: Alexander Dahl <ada@thorsis.com>
---
rules/libmicrohttpd.make | 12 +++++++-----
1 file changed, 7 insertions(+), 5 deletions(-)
diff --git a/rules/libmicrohttpd.make b/rules/libmicrohttpd.make
index e42ac2316..3d1710bc8 100644
--- a/rules/libmicrohttpd.make
+++ b/rules/libmicrohttpd.make
@@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_LIBMICROHTTPD) += libmicrohttpd
#
# Paths and names
#
-LIBMICROHTTPD_VERSION := 0.9.77
-LIBMICROHTTPD_MD5 := bc1b407093459ff5e7af2e3c0634d220
+LIBMICROHTTPD_VERSION := 1.0.1
+LIBMICROHTTPD_MD5 := b41c83799a478ea9c774e50ed22446bc
LIBMICROHTTPD := libmicrohttpd-$(LIBMICROHTTPD_VERSION)
LIBMICROHTTPD_SUFFIX := tar.gz
LIBMICROHTTPD_URL := $(call ptx/mirror, GNU, libmicrohttpd/$(LIBMICROHTTPD).$(LIBMICROHTTPD_SUFFIX))
@@ -46,13 +46,13 @@ LIBMICROHTTPD_CONF_ENV := $(CROSS_ENV) \
LIBMICROHTTPD_CONF_OPT := \
$(CROSS_AUTOCONF_USR) \
- --disable-nls \
- --disable-rpath \
- --enable-gcc-hardening \
+ --enable-compact-code \
+ --enable-compiler-hardening \
--enable-linker-hardening \
--disable-thread-names \
--disable-doc \
--disable-examples \
+ --disable-tools \
--disable-heavy-tests \
--enable-poll \
--enable-epoll \
@@ -66,6 +66,8 @@ LIBMICROHTTPD_CONF_OPT := \
--enable-bauth \
--disable-dauth \
--disable-httpupgrade \
+ --enable-cookie \
+ --disable-sha512-256 \
--disable-coverage \
--enable-asserts \
--disable-sanitizers \
--
2.39.5
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [ptxdist] [APPLIED] libmicrohttpd: version bump 0.9.75 -> 0.9.76
2025-05-06 12:52 ` [ptxdist] [PATCH v1 1/4] libmicrohttpd: version bump 0.9.75 -> 0.9.76 Alexander Dahl via ptxdist
@ 2025-05-14 6:07 ` Michael Olbrich
0 siblings, 0 replies; 9+ messages in thread
From: Michael Olbrich @ 2025-05-14 6:07 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
Thanks, applied as f1b7d21931d572ee7ead1bef8506a55c6824ddae.
Michael
[sent from post-receive hook]
On Wed, 14 May 2025 08:07:45 +0200, Alexander Dahl <ada@thorsis.com> wrote:
> Mitigates CVE-2023-27371.
>
> Link: https://lists.gnu.org/archive/html/libmicrohttpd/2023-02/msg00000.html
> Signed-off-by: Alexander Dahl <ada@thorsis.com>
> Message-Id: <20250506125250.2282628-2-ada@thorsis.com>
> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
>
> diff --git a/rules/libmicrohttpd.make b/rules/libmicrohttpd.make
> index 68952eb8dad0..7ae58000b731 100644
> --- a/rules/libmicrohttpd.make
> +++ b/rules/libmicrohttpd.make
> @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_LIBMICROHTTPD) += libmicrohttpd
> #
> # Paths and names
> #
> -LIBMICROHTTPD_VERSION := 0.9.75
> -LIBMICROHTTPD_MD5 := aff64581937b53f3a23b05216ad2cd02
> +LIBMICROHTTPD_VERSION := 0.9.76
> +LIBMICROHTTPD_MD5 := a9f03510c521964ad40698471351673a
> LIBMICROHTTPD := libmicrohttpd-$(LIBMICROHTTPD_VERSION)
> LIBMICROHTTPD_SUFFIX := tar.gz
> LIBMICROHTTPD_URL := $(call ptx/mirror, GNU, libmicrohttpd/$(LIBMICROHTTPD).$(LIBMICROHTTPD_SUFFIX))
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [ptxdist] [APPLIED] libmicrohttpd: Pin down threading library
2025-05-06 12:52 ` [ptxdist] [PATCH v1 2/4] libmicrohttpd: Pin down threading library Alexander Dahl via ptxdist
@ 2025-05-14 6:07 ` Michael Olbrich
0 siblings, 0 replies; 9+ messages in thread
From: Michael Olbrich @ 2025-05-14 6:07 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
Thanks, applied as 20bc0e96eb19716d45a3deaca8d00493d715b023.
Michael
[sent from post-receive hook]
On Wed, 14 May 2025 08:07:46 +0200, Alexander Dahl <ada@thorsis.com> wrote:
> 'posix' is what's found in automatic mode.
>
> Signed-off-by: Alexander Dahl <ada@thorsis.com>
> Message-Id: <20250506125250.2282628-3-ada@thorsis.com>
> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
>
> diff --git a/rules/libmicrohttpd.make b/rules/libmicrohttpd.make
> index 7ae58000b731..441644751da0 100644
> --- a/rules/libmicrohttpd.make
> +++ b/rules/libmicrohttpd.make
> @@ -68,7 +68,8 @@ LIBMICROHTTPD_CONF_OPT := \
> --disable-coverage \
> --enable-asserts \
> --disable-sanitizers \
> - --disable-experimental
> + --disable-experimental \
> + --with-threads=posix
>
> # ----------------------------------------------------------------------------
> # Target-Install
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [ptxdist] [APPLIED] libmicrohttpd: version bump 0.9.76 -> 0.9.77
2025-05-06 12:52 ` [ptxdist] [PATCH v1 3/4] libmicrohttpd: version bump 0.9.76 -> 0.9.77 Alexander Dahl via ptxdist
@ 2025-05-14 6:07 ` Michael Olbrich
0 siblings, 0 replies; 9+ messages in thread
From: Michael Olbrich @ 2025-05-14 6:07 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
Thanks, applied as 95c186f8665f2b905c8376e15b9c67a504553aec.
Michael
[sent from post-receive hook]
On Wed, 14 May 2025 08:07:47 +0200, Alexander Dahl <ada@thorsis.com> wrote:
> Mostly bugfix release.
>
> The new, improved eventfd configure check failed for cross compiling.
> Just assume the kernel has CONFIG_EVENTFD enabled (recommended and
> enabled if cgroups are enabled).
>
> Link: https://lists.gnu.org/archive/html/libmicrohttpd/2023-05/msg00008.html
> Signed-off-by: Alexander Dahl <ada@thorsis.com>
> Message-Id: <20250506125250.2282628-4-ada@thorsis.com>
> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
>
> diff --git a/rules/libmicrohttpd.make b/rules/libmicrohttpd.make
> index 441644751da0..7d8444b21bd5 100644
> --- a/rules/libmicrohttpd.make
> +++ b/rules/libmicrohttpd.make
> @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_LIBMICROHTTPD) += libmicrohttpd
> #
> # Paths and names
> #
> -LIBMICROHTTPD_VERSION := 0.9.76
> -LIBMICROHTTPD_MD5 := a9f03510c521964ad40698471351673a
> +LIBMICROHTTPD_VERSION := 0.9.77
> +LIBMICROHTTPD_MD5 := bc1b407093459ff5e7af2e3c0634d220
> LIBMICROHTTPD := libmicrohttpd-$(LIBMICROHTTPD_VERSION)
> LIBMICROHTTPD_SUFFIX := tar.gz
> LIBMICROHTTPD_URL := $(call ptx/mirror, GNU, libmicrohttpd/$(LIBMICROHTTPD).$(LIBMICROHTTPD_SUFFIX))
> @@ -43,6 +43,10 @@ endif
> # autoconf
> #
> LIBMICROHTTPD_CONF_TOOL := autoconf
> +
> +LIBMICROHTTPD_CONF_ENV := $(CROSS_ENV) \
> + mhd_cv_eventfd_usable=yes
> +
> LIBMICROHTTPD_CONF_OPT := \
> $(CROSS_AUTOCONF_USR) \
> --disable-nls \
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [ptxdist] [APPLIED] libmicrohttpd: version bump 0.9.77 -> 1.0.1
2025-05-06 12:52 ` [ptxdist] [PATCH v1 4/4] libmicrohttpd: version bump 0.9.77 -> 1.0.1 Alexander Dahl via ptxdist
@ 2025-05-14 6:07 ` Michael Olbrich
0 siblings, 0 replies; 9+ messages in thread
From: Michael Olbrich @ 2025-05-14 6:07 UTC (permalink / raw)
To: ptxdist; +Cc: Alexander Dahl
Thanks, applied as 4a1ebd2708fe9ff744936385c7197f33307860bc.
Michael
[sent from post-receive hook]
On Wed, 14 May 2025 08:07:48 +0200, Alexander Dahl <ada@thorsis.com> wrote:
> Official stable release.
>
> Link: https://lists.gnu.org/archive/html/info-gnu/2024-02/msg00000.html
> Link: https://lists.gnu.org/archive/html/info-gnu/2024-02/msg00003.html
> Signed-off-by: Alexander Dahl <ada@thorsis.com>
> Message-Id: <20250506125250.2282628-5-ada@thorsis.com>
> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
>
> diff --git a/rules/libmicrohttpd.make b/rules/libmicrohttpd.make
> index 7d8444b21bd5..127f84c7d279 100644
> --- a/rules/libmicrohttpd.make
> +++ b/rules/libmicrohttpd.make
> @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_LIBMICROHTTPD) += libmicrohttpd
> #
> # Paths and names
> #
> -LIBMICROHTTPD_VERSION := 0.9.77
> -LIBMICROHTTPD_MD5 := bc1b407093459ff5e7af2e3c0634d220
> +LIBMICROHTTPD_VERSION := 1.0.1
> +LIBMICROHTTPD_MD5 := b41c83799a478ea9c774e50ed22446bc
> LIBMICROHTTPD := libmicrohttpd-$(LIBMICROHTTPD_VERSION)
> LIBMICROHTTPD_SUFFIX := tar.gz
> LIBMICROHTTPD_URL := $(call ptx/mirror, GNU, libmicrohttpd/$(LIBMICROHTTPD).$(LIBMICROHTTPD_SUFFIX))
> @@ -49,13 +49,13 @@ LIBMICROHTTPD_CONF_ENV := $(CROSS_ENV) \
>
> LIBMICROHTTPD_CONF_OPT := \
> $(CROSS_AUTOCONF_USR) \
> - --disable-nls \
> - --disable-rpath \
> - --enable-gcc-hardening \
> + --enable-compact-code \
> + --enable-compiler-hardening \
> --enable-linker-hardening \
> --disable-thread-names \
> --disable-doc \
> --disable-examples \
> + --disable-tools \
> --disable-heavy-tests \
> --enable-poll \
> --enable-epoll \
> @@ -69,6 +69,8 @@ LIBMICROHTTPD_CONF_OPT := \
> --enable-bauth \
> --disable-dauth \
> --disable-httpupgrade \
> + --enable-cookie \
> + --disable-sha512-256 \
> --disable-coverage \
> --enable-asserts \
> --disable-sanitizers \
^ permalink raw reply [flat|nested] 9+ messages in thread
end of thread, other threads:[~2025-05-14 6:10 UTC | newest]
Thread overview: 9+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2025-05-06 12:52 [ptxdist] [PATCH v1 0/4] libmicrohttpd: version bump 0.9.75 -> 1.0.1 Alexander Dahl via ptxdist
2025-05-06 12:52 ` [ptxdist] [PATCH v1 1/4] libmicrohttpd: version bump 0.9.75 -> 0.9.76 Alexander Dahl via ptxdist
2025-05-14 6:07 ` [ptxdist] [APPLIED] " Michael Olbrich
2025-05-06 12:52 ` [ptxdist] [PATCH v1 2/4] libmicrohttpd: Pin down threading library Alexander Dahl via ptxdist
2025-05-14 6:07 ` [ptxdist] [APPLIED] " Michael Olbrich
2025-05-06 12:52 ` [ptxdist] [PATCH v1 3/4] libmicrohttpd: version bump 0.9.76 -> 0.9.77 Alexander Dahl via ptxdist
2025-05-14 6:07 ` [ptxdist] [APPLIED] " Michael Olbrich
2025-05-06 12:52 ` [ptxdist] [PATCH v1 4/4] libmicrohttpd: version bump 0.9.77 -> 1.0.1 Alexander Dahl via ptxdist
2025-05-14 6:07 ` [ptxdist] [APPLIED] " Michael Olbrich
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox